Sudo Privilege Access for RHEL OS

AppViewX is installed on a Kubernetes engine. To install the underlying Kubernetes engine and other required dependencies, such as containerd, sudo access and executable permissions for the /tmp mount point are required.

Adding Commands in the Sudoers List

Below are the commands that must be added to the sudoers list to perform essential tasks such as installation, upgrade, Master Load Balancer configuration, prerequisite validation, and uninstallation of AppViewX. These commands are mandatory for any upgrade activities, and no alternative methods are supported.

Note: The package manager commands may vary depending on whether you are using RHEL/CentOS or Ubuntu. Please add them to the sudoers list accordingly.


S NO	Commands to add in sudoers list
1	mkdir
2	cp
3	chmod
4	sed
5	systemctl
6	rm
7	umask
8	*kubeadm (path: /usr/bin/kubeadm)
9	chown
10	yum
11	echo
12	modprobe
13	sysctl
14	rpm
15	swapoff
16	setenforce
17	bash
18	mv
19	tee
20	whoami
21	mkfs.xfs
22	grep
23	mount
24	umount
25	sleep
26	dd
27	tcpdump
28	cat
29	sh
30	*crictl (path: /usr/bin/crictl)
31	timedatectl
32	hwclock
33	ntpq
34	chronyc
35	ifconfig
36	ip
37	nc
38	sshd
39	*istioctl (path: <INSTALLER_PATH>/bin/istioctl)
40	*calicoctl (path: <INSTALLER_PATH>/bin/calicoctl)
The commands with the asterix (*) do not require separate installation but should be included in the sudo privileges list. These packages are included as part of the installer. (Installation path: up to appviewx_kubernetes, e.g., /home/appviewx/appviewx_kubernetes).

Apart from the above commands, Sudo user must be able to read/write/execute in the following directories:

/etc/ (read/write/)
/var/ (read/write/)
/tmp/ (read/write/execute)
/usr/ (read/write/)
/home/SSH_OTHER_USER (Other user is user-defined in /scripts/appviewx.conf)